Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/323830343a3930633a3a2f34302d3430203d3e20323632363137.roa
File: 323830343a3930633a3a2f34302d3430203d3e20323632363137.roa (raw, json)
Hash identifier: bWsSjeWJrykIUAIeyhi4eaKxnz98j+KaN1J09yJ+4R8=
Subject key identifier: 73:4D:82:7F:43:81:0E:68:23:BF:C0:BD:7A:20:A3:04:9C:4A:C9:ED
Certificate issuer: /CN=00078D2B578982663EFE91FC4B5397C48403E2E4
Certificate serial: 46181C5CED6472CEF66541F902795EA05202ED93
Authority key identifier: 00:07:8D:2B:57:89:82:66:3E:FE:91:FC:4B:53:97:C4:84:03:E2:E4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/00078D2B578982663EFE91FC4B5397C48403E2E4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/323830343a3930633a3a2f34302d3430203d3e20323632363137.roa
Signing time: Wed 05 Mar 2025 20:36:07 +0000
ROA not before: Wed 05 Mar 2025 20:31:07 +0000
ROA not after: Wed 04 Mar 2026 20:36:07 +0000
asID: 262617
IP address blocks: 2804:90c::/40 maxlen: 40
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:18:1c:5c:ed:64:72:ce:f6:65:41:f9:02:79:5e:a0:52:02:ed:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00078D2B578982663EFE91FC4B5397C48403E2E4
Validity
Not Before: Mar 5 20:31:07 2025 GMT
Not After : Mar 4 20:36:07 2026 GMT
Subject: CN=734D827F43810E6823BFC0BD7A20A3049C4AC9ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e2:d0:79:12:55:14:2c:46:cf:68:59:88:7d:
08:eb:2b:40:f9:e8:ff:15:fa:78:e7:84:fe:ea:a2:
bb:82:ad:74:03:0f:42:1e:5f:60:b4:66:66:69:e2:
4c:93:d3:ab:14:81:53:30:38:e1:ae:94:9b:1a:17:
50:02:b2:80:f7:2b:1a:8f:c4:0f:50:2d:a7:09:be:
14:8e:23:dd:35:6e:2c:fc:45:84:03:50:1d:d8:fb:
d3:b9:9b:3f:3f:ef:c2:7d:8e:ad:b0:8c:f1:b7:e5:
ab:34:43:ed:f3:aa:70:54:b0:d6:91:d2:76:97:9d:
27:da:3c:1c:02:bb:5c:db:e1:ba:22:db:b3:98:7b:
41:22:53:ac:13:78:a9:fc:07:c3:d2:0a:e9:9d:7a:
03:5a:66:77:e4:8e:08:cf:11:d9:bc:99:ca:3d:c8:
94:b6:d0:b0:9c:d8:04:4e:1c:f6:49:b4:17:57:64:
67:6a:b6:4e:e7:05:56:89:90:9e:f3:40:2c:d2:e6:
b7:2d:0a:2b:53:27:bc:9c:99:bb:8c:45:5e:6d:12:
c8:16:49:cc:66:d6:e6:26:2c:b3:23:57:5b:64:ba:
55:34:a2:22:59:86:60:f7:9e:e4:cf:ab:39:43:28:
5a:bc:26:7e:7e:25:52:92:e4:93:89:f4:c7:5d:6d:
10:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:4D:82:7F:43:81:0E:68:23:BF:C0:BD:7A:20:A3:04:9C:4A:C9:ED
X509v3 Authority Key Identifier:
keyid:00:07:8D:2B:57:89:82:66:3E:FE:91:FC:4B:53:97:C4:84:03:E2:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/00078D2B578982663EFE91FC4B5397C48403E2E4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/00078D2B578982663EFE91FC4B5397C48403E2E4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/323830343a3930633a3a2f34302d3430203d3e20323632363137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:90c::/40
Signature Algorithm: sha256WithRSAEncryption
82:73:24:0f:6e:9f:fb:1b:75:c0:01:96:36:fb:cd:31:87:be:
c7:dd:c0:86:06:e3:fa:ad:57:86:2b:21:7e:44:99:19:eb:83:
2d:b8:cd:24:cb:21:78:82:3f:27:81:67:5e:9a:b2:66:cd:0f:
c5:a0:3e:ac:4e:d1:da:b1:55:3e:05:96:6f:e4:2a:64:9b:d1:
70:07:45:be:f0:c0:28:00:48:be:1c:ad:00:e3:77:e3:d7:32:
b0:bd:f2:fb:9a:ec:6e:99:4e:f7:e7:61:f1:07:ff:12:84:3b:
9c:78:dd:78:66:de:de:b4:77:60:a7:85:36:f8:0a:42:4e:af:
0f:f8:b0:15:ba:50:2c:34:55:49:5c:7c:58:2a:9b:78:71:02:
9f:5e:2a:84:fb:4a:c5:67:48:ec:15:fc:1b:e8:6c:78:b7:c1:
4f:30:65:b4:78:39:2d:3f:15:c7:66:db:d3:3c:79:ba:98:be:
f2:d0:97:92:25:0b:34:ba:76:e7:67:73:d1:0a:f8:e2:d9:6e:
6f:02:db:d3:69:fa:d7:dc:07:6c:7b:1e:db:65:da:be:62:4e:
b2:ec:60:12:35:1c:bb:60:b5:d2:41:17:16:de:43:07:80:b6:
0d:14:d3:bd:28:d8:df:d3:7c:e7:ba:52:ac:26:1d:78:e7:10:
c0:dd:1f:9c
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIURhgcXO1kcs72ZUH5AnleoFIC7ZMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDAwNzhEMkI1Nzg5ODI2NjNFRkU5MUZDNEI1Mzk3QzQ4
NDAzRTJFNDAeFw0yNTAzMDUyMDMxMDdaFw0yNjAzMDQyMDM2MDdaMDMxMTAvBgNV
BAMTKDczNEQ4MjdGNDM4MTBFNjgyM0JGQzBCRDdBMjBBMzA0OUM0QUM5RUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs4tB5ElUULEbPaFmIfQjrK0D5
6P8V+njnhP7qoruCrXQDD0IeX2C0ZmZp4kyT06sUgVMwOOGulJsaF1ACsoD3KxqP
xA9QLacJvhSOI901biz8RYQDUB3Y+9O5mz8/78J9jq2wjPG35as0Q+3zqnBUsNaR
0naXnSfaPBwCu1zb4boi27OYe0EiU6wTeKn8B8PSCumdegNaZnfkjgjPEdm8mco9
yJS20LCc2AROHPZJtBdXZGdqtk7nBVaJkJ7zQCzS5rctCitTJ7ycmbuMRV5tEsgW
Scxm1uYmLLMjV1tkulU0oiJZhmD3nuTPqzlDKFq8Jn5+JVKS5JOJ9MddbRADAgMB
AAGjggJPMIICSzAdBgNVHQ4EFgQUc02Cf0OBDmgjv8C9eiCjBJxKye0wHwYDVR0j
BBgwFoAUAAeNK1eJgmY+/pH8S1OXxIQD4uQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRGtRRXQ3OHc0dldEUFpXQkp0WXFKdzZ3NGJTWFA0ekM4S2lnZDFwb2NI
azUvMS8wMDA3OEQyQjU3ODk4MjY2M0VGRTkxRkM0QjUzOTdDNDg0MDNFMkU0LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzAwMDc4RDJCNTc4OTgyNjYz
RUZFOTFGQzRCNTM5N0M0ODQwM0UyRTQuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB
lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0RrUUV0Nzh3NHZXRFBaV0JKdFlxSnc2dzRiU1hQNHpDOEtpZ2QxcG9jSGs1LzEv
MzIzODMwMzQzYTM5MzA2MzNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzYzMjM2
MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB
/wQSMBAwDgQCAAIwCAMGACgECQwAMA0GCSqGSIb3DQEBCwUAA4IBAQCCcyQPbp/7
G3XAAZY2+80xh77H3cCGBuP6rVeGKyF+RJkZ64MtuM0kyyF4gj8ngWdemrJmzQ/F
oD6sTtHasVU+BZZv5Cpkm9FwB0W+8MAoAEi+HK0A43fj1zKwvfL7muxumU7352Hx
B/8ShDuceN14Zt7etHdgp4U2+ApCTq8P+LAVulAsNFVJXHxYKpt4cQKfXiqE+0rF
Z0jsFfwb6Gx4t8FPMGW0eDktPxXHZtvTPHm6mL7y0JeSJQs0unbnZ3PRCvji2W5v
AtvTafrX3Adsex7bZdq+Yk6y7GASNRy7YLXSQRcW3kMHgLYNFNO9KNjf03znulKs
Jh145xDA3R+c
-----END CERTIFICATE-----
Generated at Thu Sep 18 08:53:41 2025 by rpki-client